Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 39 subscribers
  • Views 9340 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG IPSec Tunnel to UDM VLANs Connection Error

Sheldon Trewin

Hi all,

I have a working IPSec tunnel from my Sophos XG to my UniFi UDM at a remote site. I have many VLANS at the remote site. The XG can connect to the UDM default VLAN, but not any others. Does anyone have experience with this? Thanks!



This thread was automatically locked due to age.
Parents
  • 0

    Hi Sheldon,

    Thank you for reaching out to Sophos Community.

    Let me ensure I understand you correctly. Only the default VLAN can access the remote site, and no other VLANs.

    Are the other VLANs included in your Firewall Rule to allow them Access to the other site and vice versa? 

    I recommend checking the log viewer and doing a Packet Capture to verify the traffic.

    Erick Jan
    Community Support Engineer | Sophos Technical Support
    Sophos Support Videos Product Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.

  • 0 in reply to Erick Jan

    Only the default VLAN on the UniFI UDM at our remote site can access the LAN on our Sophos XG.

    The Sophos XG is the "master"  for the IPSec tunnel. I do have a firewall rule set up on the Sophos XG to allow the Sophos LAN to communicate with the default VLAN and VLAN 30 on the UniFi.

Reply
  • 0 in reply to Erick Jan

    Only the default VLAN on the UniFI UDM at our remote site can access the LAN on our Sophos XG.

    The Sophos XG is the "master"  for the IPSec tunnel. I do have a firewall rule set up on the Sophos XG to allow the Sophos LAN to communicate with the default VLAN and VLAN 30 on the UniFi.

Children
Unfiltered HTML